IIT Home Page CNR Home Page

A Lifecycle for Data Sharing Agreements: How it works out

An electronic Data Sharing Agreement (DSA) is a human-readable, yet machine-processable contract, regulating how organizations and/or individuals share data. In past work, we have shed light on DSA engineering, i.e., the process of studying how data sharing is ruled in traditional legal human-readable contracts and mapping their fields (and rules) into formats that are machine-processable, leading to the transposition of a traditional legal contract into the electronic DSA. However, the definition of an electronic DSA is only the starting point of a complex DSA lifecycle, driving the contract from its creation to 1) an analysis phase, where the DSA rules are checked against conflicts; and 2) a mapping phase, where the analysed rules are transposed into privacy policies expressed in enforceable languages. This paper presents our vision for the architectural definition of a DSA system, where a lifecycle manager orchestrates: an authoring tool for legal experts, policy experts, and end users; an analyser for checking consistency of the DSA rules; a mapper for encoding rules in a low level language amenable for enforcement.

Annual Privacy Forum (APF), Francoforte, 2016

Autori esterni: Ruiz Jose Fran (Atos (Spain)), Carmela Gambardella (HP (Italia)), Mirko Manea (HP (Italia))
Autori IIT:

Tipo: Contributo in atti di convegno
Area di disciplina: Computer Science & Engineering

File: APF16.pdf

Attività: Sicurezza e privacy nello scenario di e-Health
Sicurezza nel Cloud Computing